Privacy Policy

ZELUS.COM – PRIVACY POLICY

Last Updated: December 2025

This privacy policy describes the personal data collected, generated, and/or used (processed) when you use the zelus.com website (the “Platform”). It also explains how your personal data is used, shared with third parties, and protected, what choices you have relating to your personal data, and how you can contact us.

WHO is Responsible for Processing Your Personal Data?

Zelus Sport Limited, a company registered in England and Wales (with company number 10004967) and whose registered office is at Station House, Stamford New Road, Altrincham, United Kingdom, WA14 1EP (referred to as “Zelus”, “our”, “we”, or “us” in this privacy policy), is responsible for the processing of your personal data on the Platform.

Zelus is an authorised licensee of Nike Inc., and has the official right to use Nike’s logos, brands and symbols in the design, manufacturing, distribution, and sale of teamwear sports apparel and accessories.

WHAT Personal Data Do We Collect and When?

When using certain features on the Platform we may collect personal data from you. For example, if you want to contact us using a contact form on the Platform, or using a contact email address that we list on the Platform, we may need to collect your personal data in order to receive and respond to your query.

Personal Data We Collect:

First name
Last name
Email address
Any other data that you supply in the contents of your comment or query

Automatically Collected Data:

When interacting with our Platform, certain data is automatically collected from your device or web browser:

Device IDs, call state, network access, storage information and battery information
Cookies, IP addresses, referrer headers, data identifying your web browser and version, web beacons, tags and interactions with our Platform

For more information regarding cookies, please see our cookie policy.

KIDS

We comply with local laws and do not allow children to register on our Platform when they are under the age of 16. We therefore do not knowingly collect personal information online from children under the age of 16.

TOOLS to Manage What Personal Data We Collect

When using our Platform, we may also provide in-time notice or obtain consent for certain practices. We may obtain this consent through the Platform or using the standard permissions available on your device.

In many cases, your web browser or mobile device platform will provide additional tools to allow you to control when your device collects or shares particular categories of personal data. For example, your mobile device or web browser may offer tools to allow you to manage cookie usage or location sharing. We encourage you to familiarise yourself with and use the tools available on your devices.

WHY and HOW Do We Use Your Personal Data?

We may use your personal data in the following ways:

To Provide the Features of the Platform and the Services You Request

When you use our Platform, we will use your personal data to provide the requested services. For example, if you complete our contact form, we will use the contact information you give us to communicate with you about your question or query.

To Protect Our or Others’ Rights, Property or Safety

We may also use personal data about how you use our Platform to prevent, detect, or investigate fraud, abuse, illegal use, violations of our Terms and Conditions of Use, and to comply with court orders, governmental requests or applicable law.

Other Purposes

We may also use your personal data in other ways and will provide specific notice at the time of collection and obtain your consent where necessary.

LAWFUL Processing

To process your personal data, we rely on certain lawful bases, depending on how you interact with our Platform. If we do process your personal data, we may use one or more of the following lawful bases for processing:

Compliance with applicable law: We may process your personal data where the processing is required by applicable law
Vital interests: We may process your personal data where the processing is necessary to protect the vital interests of any individual
Legitimate interests: We may process your personal data where we have a legitimate interest in carrying out the processing for the purpose of managing, operating or promoting our business, and that legitimate interest is not overridden by your interests, fundamental rights, or freedoms (for example, we may have a legitimate interest as a business to use your contact details to respond to any comments or questions submitted in our contact forms, to process information about the effectiveness of our products, services and other promotional initiatives; to operate, improve and maintain our business, products and services; to protect our or others’ rights, property or safety; and for general research and analysis purposes)

SHARING of Your Personal Data

We may share your personal data with other organisations in the following circumstances:

If the law or a public authority says we must share the personal data
If we need to share personal data in order to establish, exercise or defend our legal rights (this includes providing personal data to others for the purposes of preventing fraud and reducing credit risk)
We use third party service providers who provide elements of services for us, for example to host, manage and service our Platform. When using service providers, we enter into agreements that require them to implement appropriate technical and organisational measures to protect your personal data. A list of our third-party service providers can be found by requesting this via from our Data Protection Officer by email at DPO@zelus.com. Each independent data controller is responsible for protecting your information when it is under their control, and you may exercise your rights by contacting them directly, as set out in their Privacy Policies.
Other third parties to the extent necessary to: (i) comply with a government request, a court order or applicable law; (ii) prevent illegal uses of our Platform or violations of our Platform’s Terms of Use and our policies; (iii) defend ourselves against third party claims; and (iv) assist in fraud prevention or investigation (e.g., counterfeiting)
Zelus companies, subsidiaries, and affiliated companies
To any other third party where you have provided your consent

We may also transfer personal data we have about you in the event we sell or transfer all or a portion of our business or assets (including in the event of a reorganisation, spin-off, dissolution or liquidation).

We Do Not Sell Your Personal Data

We will not sell your personal data to any third parties. We will only share your personal data with third parties in the manners set out in this privacy policy or notified to you from time to time.

Management of International Transfers of Your Personal Data

Some of the data recipients with whom we share your personal data may be located in countries other than the country in which your personal data originally was collected. The laws in those countries may not provide the same level of data protection compared to the country in which you initially provided your data. Nevertheless, when we transfer your personal data to recipients in other countries, we will protect that personal data as described in this privacy policy and in compliance with applicable law.

We take measures to comply with applicable legal requirements for the transfer of personal data to recipients in countries outside of the EEA, United Kingdom (UK) or Switzerland that do not provide an adequate level of data protection.

We use a variety of measures to ensure that your personal data transferred to these countries receives adequate protection in accordance with data protection rules. This includes signing the EU Standard Contractual Clauses, entering into an international data transfer agreement, or verifying the recipient has adopted Binding Corporate Rules. Where personal data is transferred within Zelus’ group companies that are based in different jurisdictions, we use an intragroup data transfer agreement.

RETENTION of your Personal Data

Your personal information will be retained for as long as is necessary to carry out the purposes set out in this privacy policy (unless a longer retention period is required by applicable law).

YOUR RIGHTS

You have the right to request:

Access to your personal data
An electronic copy of your personal data (portability) and to have this information transmitted to another company
Correction of your personal data if it is incomplete or inaccurate
Deletion or restriction of, or an objection to the processing of, your personal data in certain circumstances provided by applicable law

These rights are not absolute. Where we have obtained your consent for the processing of your personal data, you have the right to withdraw your consent at any time.

If you like would to request a copy of your personal data or exercise any of your other rights, please contact our Data Protection Officer by email at DPO@zelus.com

For more information about your privacy rights:

The Information Commissioner’s Office (ICO) regulates data protection and privacy matters in the UK. They make a lot of information accessible to consumers on their website and they ensure that the registered details of all data controllers such as ourselves are available publicly. You can contact them using the link to the ICO website at the end of this policy.

Website Cookies

For more information regarding cookies, please see our cookie policy.

SECURITY

Data security is of great importance to Zelus. To protect your data we have put in place suitable physical, electronic, and managerial procedures to safeguard and secure your personal data.

We take security measures to protect your information, including:

Limiting access to our buildings to those that we have determined are entitled to be there (by use of passes, key card access and other related technologies)
Implementing access controls to our information technology
We use appropriate procedures and technical security measures (including strict encryption, anonymisation and archiving techniques) to safeguard your information across all our computer systems, networks, websites, mobile apps, offices and stores
Never asking you for your passwords

Despite our efforts, no website, mobile application, database or system is completely secure or “hacker proof.” You can help keep your data safe by taking reasonable steps to protect your personal information against unauthorised disclosure or misuse.

Links to Third-Party Products and Services

Our Platform may provide links to other (third-party) websites and apps for your convenience or information. Linked sites and apps have their own privacy notices or policies, which we strongly encourage you to review. To the extent any linked websites or apps are not owned or controlled by Zelus, we are not responsible for their content, any use of the websites or apps, or the privacy practices of the websites or apps.

CHANGES to Our Privacy Policy

Applicable law and our practices change over time. If we decide to update our privacy policy, we will post the changes on our Platform. If we materially change the way in which we process your personal data, we will provide you with prior notice, or where legally required, request your consent prior to implementing such changes. We strongly encourage that you read our privacy policy and keep yourself informed of our practices.

QUESTIONS and Contact Details

Contacting Zelus

We welcome questions, comments, and concerns about our privacy policy and privacy practices. If you would like to provide feedback or if you have questions or concerns or wish to exercise one of your rights related to your personal data, please contact our Data Protection Officer by email at DPO@zelus.com.

If you contact us with a privacy complaint it will be assessed with the aim of resolving the issue in a timely and effective manner. You also have the right to lodge a complaint with the relevant supervisory authority in the country in which you reside.

Contacting the ICO in the UK

You can make a complaint to the ICO at any time about the way we use your information. However, we hope that you would consider raising any issue or complaint you have with us first. Your satisfaction is extremely important to us, and we will always do our very best to solve any problems you may have.

You can find the ICO’s contact details on the ICO website.

Contacting Other Regulatory Bodies

If you are based in an EU member state or an EEA country, you have the right to make a complaint at any time to the relevant supervisory authority in the country where you live.

Thank you for taking the time to read our Privacy Policy.

ZELUS APPLICANT PRIVACY NOTICE

This applicant privacy notice (“Applicant Notice”) describes how we collect and use personal information about you when applying for a position with us, in accordance with Data Protection Law.

This Applicant Notice applies to applicants, potential or perspective candidates. This Applicant Notice applies in addition to our main Privacy Policy above, and does not override or supersede it. The definitions, interpretations, and capitalised terms used in the Privacy Policy above shall apply in this Applicant Notice, except where expressly stated otherwise.

This Applicant Notice does not form part of any contract of employment or other contract to provide services. We may update this notice at any time.

It is important that you read this Applicant Notice, together with any other privacy notice or policy we may provide on specific occasions when we are collecting or processing personal information about you, so that you are aware of how and why we are using such information.

Data Protection Law means the Data Protection Act 2018 (DPA2018), United Kingdom General Data Protection Regulation (UK GDPR), the Privacy and Electronic Communications (EC Directive) Regulations 2003 and any legislation implemented in connection with the aforementioned legislation. Where data is processed by a controller or processor established in the European Union or comprises the data of people in the European Union, it also includes the EU General Data Protection Regulation (EU GDPR). This includes any replacement legislation coming into effect from time to time.

WHAT Personal Data Do We Collect and When?

We collect and process Personal Information about you as far as necessary to take pre contractual steps, evaluation, assessment, or screening and to comply with legal obligations to which we are subject. This includes:

The information that you provide to us during the recruitment process, including your resume or curriculum vitae, application form, work history and experience, education, degrees, academic records, languages and qualifications, references and any professional licenses, memberships, or certification, previous or other employment, how you heard about the job, reason for leaving your previous employer and availability
Your basic contact information, including your name, address, telephone numbers (home, mobile/cell, work), email address, citizenship/nationality, date and place of birth, gender, right to work/work permit information if applicable
Your government issued identifiers subject to the conditions of applicable law, such as your national ID details, tax identification number, social security or national insurance number, passport number, and, where required for the position, your driver’s license number
Information about your personal or family life, including marital status, dependents, beneficiaries and partner/spouse, and emergency contact information
Information about your working hours and leaves, including attendance, holiday/vacation, leaves or absences, travel and mobility

Special Categories of Personal Data

Throughout your recruitment process we also may be required to collect special categories of personal data to comply with our legal requirements in the field of employment, social security and social protection law.

We will use your information relating to leaves of absence which may include sickness absence or family related leaves, to comply with employment and other laws
We will use information about your physical or mental health, or disability status, to ensure your health and safety in the workplace and to assess your fitness to work, to provide appropriate workplace adjustments, to monitor and manage sickness absence and to administer benefits
We will use information about your race or nationality or ethnic origin, religious, philosophical, or moral beliefs, or your sexual life or sexual orientation, to ensure meaningful equal opportunity monitoring and reporting

We do not need your consent if we use special categories of your personal information in accordance with our written policy to carry out our legal obligations or exercise specific rights in the field of employment law. In limited circumstances we may approach you for your written consent to allow us to process certain particularly sensitive data. If we do so, we will provide you with full details of the information that we would like and the reason we need it, so that you can carefully consider whether you wish to consent. You should be aware that it is not a condition of your contract with us that you agree to any request for consent from us.

YOUR RIGHTS

Your rights, and the processes you should follow to exercise your rights, that are set out under the header “YOUR RIGHTS” in the main Privacy Policy above apply to this Applicant Notice.

THIRD PARTIES

Zelus relies on service providers and vendors that provide products and services; your Personal Information will be disclosed to these third parties only where necessary for the purpose of achieving the objectives outlined in this Applicant Notice. These include accountants, law firms and legal service providers, tax or financial professionals, payroll and benefits providers, relocation companies, pension and insurance companies, human resources specialists, consultants, contractors, IT support and storage providers.

Our third-party service providers may have access to your Personal Information to perform certain functions or may host your Personal Information as part of a “cloud based” solution used by employees. Zelus uses third party service providers that ensure sufficient guarantees for the protection of your Personal Information. All vendors are to undergo a vendor risk assessment. Zelus requires third party service providers by contract to implement appropriate data security and confidentiality obligations, in accordance with applicable law.

We do not allow our third-party service providers to use your personal data for their own purposes. We only permit them to process your personal data for specified purposes and in accordance with our instructions.

SECURITY

The provisions relating to data security set out under the header “SECURITY” in the main Privacy Policy above apply to this Applicant Notice.

APPLICANT DATA RETENTION

We will only retain your data in accordance with our main Privacy Policy and this Applicant Notice to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

Details of retention periods for different aspects of your personal information are available in our retention policy which is available from our Data Protection Officer. You can contact our Data Protection Officer by email at DPO@zelus.com.

To determine the appropriate retention period for personal data we consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

CHANGES to Our Applicant Notice

Applicable law and our practices change over time. If we decide to update our Applicant Notice, we will post the changes on our Platform. If we materially change the way in which we process your personal data, we will provide you with prior notice, or where legally required, request your consent prior to implementing such changes. We strongly encourage that you read our Privacy Policy and keep yourself informed of our practices.